Author name: CIO

Top 10 Countries That Have Payment Card Info Spilled Onto the Dark Web in 2025

Top 10 countries with card info on dark web in 2025: US (30,000+ cards), Singapore (5,400+), Spain (5,090+), UK (1,804+), Kuwait (1,518), France (722), Ireland (589), Canada (442), Germany (408), Cyprus (326). Stolen cards trading at low prices due to high supply and low-quality data. Most stolen details remain valid for 12-16 months, making them risky for consumers. Key security measures: monitor statements, use strong passwords, disable browser password saving, enable multi-factor authentication.

https://www.cybersecurity-insiders.com/top-10-countries-that-have-payment-card-info-spilled-onto-the-dark-web-in-2025/

How Agentic AI Could Turbocharge Fraud

Agentic AI could revolutionize online shopping but poses significant fraud risks. Payments professionals at Money 20/20 expressed concerns that criminals might exploit AI to execute scams more effectively. Programs like FraudGPT, available for subscription, could escalate fraud incidents by automating scams and creating synthetic identities. Executives highlighted challenges in verifying AI-driven transactions and the need for robust authentication processes to combat fraud as agentic AI technology becomes prevalent.

https://www.paymentsdive.com/news/how-agentic-ai-could-turbocharge-fraud-payments/804562/

Vulnerability-Lookup

Vulnerability-Lookup is a platform for security teams to track and manage vulnerabilities across products and vendors. It integrates multiple vulnerability databases, enabling users to correlate and manage vulnerabilities without relying on specific identifiers. Features include custom watch lists, an API, modular import systems, and support for Coordinated Vulnerability Disclosures (CVD). It is co-funded by CIRCL and the EU.

https://www.vulnerability-lookup.org/

Preparing for Threats to Come: Cybersecurity Forecast 2026

Cybersecurity Forecast 2026: Google Cloud's report focuses on upcoming cybersecurity threats, emphasizing AI's role in escalating cybercrime, with adversaries leveraging AI for more sophisticated attacks and social engineering. Key predictions include increased ransomware incidents, the growth of cyber operations from nation-states like Russia, China, Iran, and North Korea, and challenges in securing AI systems. Organizations are advised to adapt to these evolving threats, enhancing their security strategies in anticipation of 2026.

https://cloud.google.com/blog/topics/threat-intelligence/cybersecurity-forecast-2026/

The Great Decoupling of Labor and Capital

Extreme TLDR: Tech companies show decoupling of growth from employee count. Examples: Apple (60k for $100B), Alphabet (76k for $100B), Microsoft (124k for $100B), Meta (63k for $100B), Amazon with lower increases post-pandemic. Nvidia reached $100B with 30k. Walmart’s revenue grew with static headcount. The trend suggests future revenue growth needs fewer employees, driven by AI advancements, indicating a shift towards higher productivity with fewer workers.

https://www.mbi-deepdives.com/the-great-decoupling-of-labor-and-capital/

2025 AI Adoption Report

2025 AI Adoption Report highlights rapid Gen AI integration in enterprises. Key findings show 82% of leaders now use Gen AI weekly, with 72% measuring ROI through productivity gains. Predictions indicate increased budgets and focus on organizational readiness. The emphasis is on leveraging human capital and establishing accountability to turn AI applications into long-term advantages.

https://knowledge.wharton.upenn.edu/special-report/2025-ai-adoption-report/

In a Landmark Decision, EU Court Clarifies When Pseudonymised Data Is Not Personal Data Under the GDPR

The ECJ clarified that pseudonymized data does not always constitute personal data under the GDPR; its classification depends on whether the recipient can reasonably reidentify individuals by considering technical, organizational, and legal factors. The perspective of the data recipient is critical; if they cannot realistically identify individuals, GDPR does not apply to that data. However, this is not an unlimited exemption—if reidentification is possible through access or contractual means, the GDPR requirements still apply. Data controllers must still be transparent, document their processes carefully, and regularly update their assessments and contracts. This decision may reduce GDPR compliance burdens and encourage broader data use for analytics and AI, provided that the risks of reidentification are effectively managed.

https://www.jdsupra.com/legalnews/in-a-landmark-decision-eu-court-7439040/

AI and Cybersecurity

A report from Aikido reveals that AI-generated code is introducing serious security vulnerabilities, with nearly seven in ten organizations having discovered such flaws and one in five reporting major incidents. Responsibility for these issues is unclear, as it is split among security teams, developers, and vendors, and the growing reliance on automated tools is exacerbating the problem. As more junior coders depend on AI, crucial human expertise is being lost, raising concerns about “dumbing down” the developer workforce. CISOs warn that organizations should focus on basic security hygiene and critical thinking while resisting the temptation to trust AI blindly, as the technology can amplify existing mistakes if not managed carefully.

https://diginomica.com/ai-and-cybersecurity-ciso-warns-blight-losing-skills-vibe-coding-where-does-your-code-come-ai-so-it

The Great AI Reset: CIOs Pivot From Pilots to Business Value

The article focus on governance and value in AI initiatives, with companies like TIAA, Regeneron, and Tractor Supply refining their AI deployments for measurable business impact. Emphasizing frameworks, governance, and alignment with business goals, these organizations are shifting from unbridled experimentation to strategic, value-driven implementations.

https://www.cio.com/article/4080608/the-great-ai-reset-cios-pivot-from-pilots-to-business-value.html

The EU Can’t Figure Out What to Do About ChatGPT

EU regulators are slow to define rules for regulating ChatGPT, despite its rapid user growth. OpenAI's chatbot must comply with the EU's Digital Services Act (DSA) and AI Act, but clarity on its categorization and requirements is lacking until mid-2026. The discrepancy between these laws and their alignment with ChatGPT's functionalities pose challenges in assessing risks, particularly regarding public health and elections. Potential penalties for non-compliance could be substantial.

https://www.politico.eu/article/eu-chatgpt-ai-digital-law-tech-openai-regulations-legal/

Scroll to Top